Ben Nugent's repositories
apisecurityinaction
Source code that accompanies the book API Security in Action
awesome-aws-security
Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
awesome-vulnerable
A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.
aws-inventory
Discover resources created in an AWS account.
aws-nuke
Nuke a whole AWS account and delete all its resources.
aws-vault
A vault for securely storing and accessing AWS credentials in development environments
cartography
Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powered by a Neo4j database.
Cloud-Pentesting
This repository is in progress, it will keep updating as I come across to new learning materials. Feel free to contribute.
cloudmapper
CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
cloudtracker
CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.
development-guide
A set of guidelines and best practices for an awesome engineering team
drawio-threatmodeling
Draw.io libraries for threat modeling diagrams
Go-SCP
Go programming language secure coding practices guide
gokatas
Memorize and perfect your Go movements 🥋
govim
govim is a Go development plugin for Vim8, written in Go
grype
A vulnerability scanner for container images and filesystems
iamlive
Generate a basic IAM policy from AWS client-side monitoring (CSM)
markdown-to-confluence
Syncs Markdown files to Confluence
my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
parliament
AWS IAM linting library
policy_sentry
IAM Least Privilege Policy Generator
pre-commit-checkov
pre-commit git hook for checkov
prowler
Prowler is an Open Source Security tool to perform Cloud Security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.
rpCheckup
rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.
sgCheckup
sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
trivy
Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues
wonk
Wonk is a tool for combining a set of AWS policy files into smaller compiled policy sets.